Re: sonicwall configuration
From: Ken Endeley (kenendeley@lycos.com)Date: 03/26/02
- Next message: JestLookin: "ConSeal PC Firewall"
- Previous message: Daniel Crichton: "Re: Weird connection to ads.forbes.com:8081"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Ken Endeley" <kenendeley@lycos.com> Date: Tue, 26 Mar 2002 11:48:55 -0500
Use the SonicWall for Nat instead of the router. The router should sit
outside your internal network. The cable from the router should go into the
WAN port on the SonicWall, and the cable from the LAN port should go into
your switch. The SonicWall should sit between the router and the internal
network (PCs). Use the SonicWall for NAT. The web server should go in the
DMZ port. Use of the "REAL" IP addresses for the web server. You should have
some client licenses for VPN with the SonicWall l. For added security, you
might need to use the SonicWall VPN with a radius server. For VPN setup, the
manual has some good scenarios
Good luck.
Ken
"jk" <jk@trest.com> wrote in message
news:a0fv7v$8qd@dispatch.concentric.net...
> Any configuration help would be greatly appreciated.
>
> I have an office with 50 pcs connected to the Internet via a fractional
> T-1.The T-1 company uses a Cisco 1700 Router to make the connection from
> their channel splitter to my network switch. The 1700 is currently doing
Nat
> translation for all of the Lan pcs and 1 static translation for the Web
> Server. We will have 3 remote dial-up clients doing VPN eventually. We
have
> 1 web server that will be "public". Right now all of the pcs are on a
> private 192.168.100.xxx network. We have 12 "real" IP addresses available
to
> us.
>
> I just bought a SonicWall Pro and I am trying to figure out where to put
it
> and what functionality it should have.
>
> Should it go between the Internet/Channel Splitter and the Router or
between
> the Router and the pcs?
>
> Do I need to disable Nat translation at the router level and move it down
to
> the Firewall level?
>
> I know this is sketchy but hopefully it is common for anyone doing
> Fractional T-1.
>
> Thanks in advance.
>
>
- Next message: JestLookin: "ConSeal PC Firewall"
- Previous message: Daniel Crichton: "Re: Weird connection to ads.forbes.com:8081"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
